Working on CAC only VPN solution. I have CAC authc against ASA working, then authz using ISE and AD mappings. What I am attempting to test is CAC authc against ASA, CAC authc against AD via ldap, and ISE authz only. Does anyone know how to make th...
Forum Posts
Hello,We hit an issue connecting vpn server at San Jose, the problem occurred at Posture Assessment procedure.The issue is wired that we have connected to vpn successfully with public direct internet connection, but when we use proxy, posture assessm...
Is there a MIB or a method to get info out of the ASA that would display the anyconnect sessions and what the username is? It would be the command of "show vpn-sessiondb anyconnect" With this output it shows Username and all the info about the client...
I've got an ASA (v9.5) with an external interface that is a 1GB connection. But we only have 100mb provisioned from our ISP. So our max utilization would be 100mb/s. When we poll the router in SNMP tools, it reports the percent utilization based...
Hey guys,I'm having an issue with configuring Anyconnect. I am currently trying to give permissions to Anyconnect using security groups in AD. The issue is that any user with an AD account can currently login to Anyconnect.I have created an LDAP attr...
Hi folks I have two rv320 that was not in use yet, i did the firmware update for the last one 1.5.1.05 on both devices and guess what ? after upgrade process in both devices i cant log in !!! I did factory reset by pushing reset pin hole in front of ...
Hi folks I have two rv320 that was not in use yet, i did the firmware update for the last one 1.5.1.05 on both devices and guess what ? after upgrade process in both devices i cant log in !!! I did factory reset by pushing reset pin hole in front of ...
I was finishing up a Asa 5506-X config and just to make sure everything was setup correctly and safe, I did a portscan to the Asa's WAN port from a computer on the internet. I noticed UDP port 500 was open and I figure it's needed for our lan to lan ...
Hi all I'm testing on a virtual environment consisting of an ASAv, the software AnyConnect in dual stack mode and I'm encountering a problem on the MacOS systems when the tunnel to be established is through IPv6 protocol.In practice what I notice is ...
Is Crypto throughput and VPN throughput essentially the same thing?
I've exhausted most of my ASA configuration knowledge and google skills and am running out of idea on something I would like to implement with our company's ASA-5516. We primarily use OSPF in our LAN, including with our ASA firewall. I want to create...
Hi,I am trying to configure a DAP policy that checks for the subject.cn and issuer.cn of a certificate, i can see from the debug logs in ASA that the hostscan is able to retrieve this information and pass to ASA (please correct me if i am wrong)...DA...
Hi together, i would like to create a VPN connection with LDAP authentication trough my Cisco 2921.At the moment i can established a connection from a pc to my Router without any problems but only with users they are created on the Router. I would li...
Hi Team, ISE posture is working fine for windows 7,8,10 desktops. ISE posture is not working in Thinclients machine running with Windows Embedded 7 OS . Anyconnect Posture Module System scan says “Operating system is not supported with Server”. IS...
Resolved! Site to Site VPN on ASA
Hello, I am having trouble getting a tunnel up and running form an ASA to a watchguard. I need to get this back on line as soon as possible for our corp[orate office. It was working, but we had an outage and in my troubleshooting efforts I beleive I ...
